Disclosed are an information processing device, information processing method, and a distributed component. The information processing device according to one embodiment comprises one or more processors. The processor is configured to generate a distributed component aimed at a three dimensional printing task. The distributed component is used for controlling, independent of the information processing device, execution of the three dimensional printing task after establishing a connection with a user equipment, and comprises decryption information of three dimensional model data used for the three dimensional printing task. The processor is further configured to control the arrangement of the distributed component to the user equipment.
|
14. A distributed component deployed from a server end to a user equipment for a three dimensional (3d) printing task, the distributed component comprising:
a storage that stores decryption information with respect to 3d model data for the 3d printing task, the 3d model data including primary model data and secondary model data;
an interface to communicate with the user equipment; and
processing circuitry is configured to
control execution of the 3d printing task independently of the server after connection is established between the distributed component and the user equipment via the interface, wherein
the secondary model data is uniquely arranged in the distributed component, and
in deployment of the distributed content to the user equipment, the 3d model data is made to be the primary model data.
1. An information processing apparatus, comprising:
processing circuitry configured to
generate a distributed component for a three dimensional (3d) printing task, wherein the distributed component includes
decryption information with respect to 3d model data for the 3d printing task, the 3d model data including primary model data and secondary model data, and
an interface to communicate with a user equipment, and
the distributed component is configured to control execution of the 3d printing task independently of the information processing apparatus after establishing connection with the user equipment via the interface; and
control deployment of the distributed component to the user equipment, wherein
the processing circuitry generates the distributed component by uniquely arranging the secondary model data in the distributed component, and
in controlling the deployment of the distributed content to the user equipment, the processing circuitry makes the 3d model data be the primary model data.
13. An information processing apparatus, comprising:
processing circuitry configured to acquire a distributed component that is deployed by a server end for a three dimensional (3d) printing task, wherein
the distributed component includes
decryption information with respect to 3d model data for the 3d printing task, the 3d model data including primary model data and secondary model data, and
an interface to communicate with a user equipment,
the distributed component is configured to control execution of the 3d printing task independently of the server after establishing connection with the user equipment via the interface,
the processing circuitry is further configured to operate the distributed component to control a 3d printing apparatus associated with the information processing apparatus to execute the 3d printing task,
the secondary model data is uniquely arranged in the distributed component, and
in deployment of the distributed content to the user equipment, the 3d model data is made to be the primary model data.
2. The information processing apparatus according to
process the 3d model data for the 3d printing task; and
control transmission of the processed 3d model data to the user equipment.
3. The information processing apparatus according to
the distributed component is configured to:
acquire a parameter of a 3d printing apparatus associated with the user equipment, and
control transmission of the parameter to the information processing apparatus, and
the processing circuitry is further configured to:
process the 3d model data into slice data based on the parameter,
generate printing configuration information based on the parameter, and
control transmission of the slice data and the printing configuration information to the distributed component at the user equipment to control the execution of the 3d printing task.
4. The information processing apparatus according to
acquire a parameter of a 3d printing apparatus associated with the user equipment; and
process the 3d model data into slice data based on the acquired parameter.
5. The information processing apparatus according to
encrypting the 3d model data or slice data obtained from the 3d model data; and/or
performing a fragmentization process and an obfuscation process on the 3d model data or the slice data.
6. The information processing apparatus according to
7. The information processing apparatus according to
the distributed component further includes authorization information related to the 3d model data, and
the distributed component is further configured to control the execution of the 3d printing task based on the authorization information.
8. The information processing apparatus according to
an identifier of the 3d model data;
an allowable number of times for printing the 3d model data; and
a usage time limit of the 3d model data.
9. The information processing apparatus according to
10. The information processing apparatus according to
11. The information processing apparatus according to
a certificate and signature information for a certificate mode;
encrypted random information or signature information for an identity public key system mode; or
challenge information, identification information and auxiliary information for a prefabrication shared key mode.
12. The information processing apparatus according to
15. The distributed component according to
control transfer of authentication information between the user equipment and a 3d printing apparatus, for mutual authentication between the user equipment and the 3d printing apparatus.
16. The distributed component according to
17. The distributed component according to
|
This application is a national stage (under 35 U.S.C. 371) of International Patent Application No. PCT/CN2017/072475, filed Jan. 24, 2017, claiming priority to Chinese Patent Application No. 201610079736.1, filed Feb. 4, 2016, both of which are herein incorporated by reference in their entirety.
The present disclosure generally relates to information processing, and in particular to an information processing apparatus, an information processing method and a distributed component which are related to three-dimensional printing.
A three-dimensional (3D) printer is a machine of accumulated manufacture technology, i.e., rapid forming technology. Based on a digital model file and by using adhesive material such as special wax, and powdered metal or plastic, the three dimensional printer manufactures a three dimensional object by printing the adhesive material layer by layer.
Modeling is an important step of the 3D printing. A model may be designed with, for example, computer-aided design (CAD), or an electronic model prototype may be directly generated by scanning an existing object and then corrected with auxiliary design software.
A design process of a 3D model for 3D printing is a link needing an intellectual property protection. In other words, the property of a designed original work should be protected. Certain information security protection measures are needed for the designed work itself, a transmission link and a print link, to avoid the work from being copied maliciously, printed arbitrarily and the like. However, in a service of proving the 3D model remotely, files of the 3D model are uncontrollable once being downloaded to a local electronic device, and may be arbitrarily copied and printed.
Brief summary of embodiments of the present disclosure is given hereinafter, to provide basic understanding for certain aspects of the present disclosure. It should be understood that, the summary is not exhaustive summary of the present disclosure. The summary is not intended to determine key parts or important parts of the present disclosure, and is not intended to limit the scope of the present disclosure. An object of the summary is only to give some concepts of the present disclosure in a simplified form, as preamble of the detailed description later.
An information processing apparatus is provided according to an embodiment. The information processing apparatus includes at least one processor. The processor is configured to generate a distributed component for a three dimensional printing task. The distributed component is configured to control execution of the three dimensional printing task independently of the information processing apparatus after establishing connection with a user equipment, and the distributed component contains decryption information with respect to three dimensional model data for the three dimensional printing task. The processor is further configured to control deployment of the distributed component to the user equipment.
An information processing method is provided according to an embodiment. The information processing method includes: generating a distributed component for a three dimensional printing task, where the distributed component is configured to control execution of the three dimensional printing task independently of an information processing apparatus after establishing connection with a user equipment, and the distributed component contains decryption information with respect to three dimensional model data for the three dimensional printing task; and controlling deployment of the distributed component to the user equipment.
An information processing apparatus is provided according to an embodiment. The information processing apparatus includes at least one processor. The processor is configured to control acquisition of a distributed component, deployed by a server end, for a three dimensional printing task. The distributed component is configured to control execution of the three dimensional printing task independently of a server after establishing connection with a user equipment, and the distributed component contains decryption information with respect to three dimensional model data for the three dimensional printing task. The processor is further configured to operate the distributed component to control a three dimensional printing apparatus associated with the information processing apparatus to execute the three dimensional printing task.
An information processing method is provided according to an embodiment. The method includes: controlling acquisition of a distributed component, deployed by a server end, for a three dimensional printing task, where the distributed component is configured to control execution of the three dimensional printing task independently of a server after establishing connection with a user equipment, and the distributed component contains decryption information with respect to three dimensional model data for the three dimensional printing task; and operating the distributed component to control a three dimensional printing apparatus associated with an information processing apparatus to execute the three dimensional printing task.
A computer-implemented distributed component is provided according to an embodiment. The computer-implemented distributed component is deployed from a server end to a user equipment for a three dimensional printing task. The distributed component includes: a control unit configured to control execution of the three dimensional printing task independently of a server after connection is established between the distributed component and the user equipment; and a carrying unit, configured to carry decryption information with respect to three dimensional model data for the three dimensional printing task.
With the apparatuses and methods according to the embodiments of the present disclosure, the 3D model data can be effectively protected and can be prevented from being arbitrarily copied and used.
The present disclosure may be understood better with reference to the description given in conjunction with drawings hereinafter. The same or similar reference numerals are used to indicate the same or similar components throughout all the drawings. The drawings together with the following detailed description are included in the specification, form a part of the specification, and are used to further illustrate preferred embodiments of the present disclosure and explain principles and advantages of the present disclosure by examples. In the drawings:
Hereinafter embodiments of the present disclosure are described with reference to the drawings. Elements and features described in one drawing or one embodiment of the present disclosure may be combined with elements and features described in one or more other drawings or embodiments. It should be noted that, indication and description of components and processing which are not related to the present disclosure or well known for those skilled in the art are omitted in the drawings and illustrations for clearness.
As shown in
The generation unit 111 is configured to generate a distributed component for a three-dimensional printing task. The distributed component is configured to control execution of the three dimensional printing task independent of the information processing apparatus 100 after establishing connection with a user equipment, and the distributed component contains decryption information with respect to three dimensional model data for the three dimensional printing task.
The decryption information may be contained in the distributed component in multiple manners. For example, according to an embodiment, the generation unit 111 may be configured to embed a decryption key and a decryption algorithm for the three dimensional model data into execution codes of the distributed component in a white-box cryptography manner.
The control unit 113 is configured to control deployment of the distributed component to the user equipment.
The information processing apparatus 100 according to the embodiment may be implemented as a server-end apparatus. For example, the information processing apparatus 100 may correspond to a server 1110 in an example shown in
A hardware platform for implementing the information processing apparatus 100 at the server end may be a server cluster based on cloud calculation, a general-purpose server, or a home computer configured as a network server. For example, a server-end functionality may be provided to the external in a network service mode, such as website, or in a client/server (C/S) mode in which case the distributed component may be provided to the user equipment as client software.
The distributed component may be called as a dynamic proxy in some scenarios. When being deployed to the user equipment and operated by the user equipment, the distributed component as a control device implemented by the user equipment (such as a distributed component 1120 shown in
In order to better understand an implementation of the information processing apparatus according to the embodiment of the present disclosure, an example of a workflow between the server end, the user equipment end (distributed component) and the 3D printing apparatus end will be described in conjunction with
As shown in
In S1220, the distributed component 1220 detects a 3D printing apparatus 1230 connected to the user equipment end and may acquire apparatus information.
In S1230, the distributed component 1220 uploads the apparatus information to the server 1210.
In S1240, if necessary, the server 1210 may issue a driver, configuration parameters and the like to the distributed component 1220 based on the apparatus information. If the distributed component 1220 can directly process an encrypted file, then only an encrypted 3D model file or an encrypted slice file may be issued.
In S1250, the distributed component 1220 decrypts an encrypted print data file, and controls execution of a printing task. As described below in conjunction with embodiments, 3D print data may be sliced at the user equipment end, and a 3D printer is driven to complete the printing.
In S1260, a 3D printer completes a printing of a 3D model.
In S1270, the distributed component 1220 may feed printing information back to the server 1210, and the server 1210 may perform a corresponding record.
In S1280, the server 1210 initiates a clear instruction.
In S1290, the distributed component 1220 clears the print file and may complete a self-destruction.
In order to facilitate understanding an implementation of the embodiment of the present disclosure,
As shown in
Referring to
In S1904, the user 1910 may login the server 1920 for a printing, and request to start the printing with the print authorization credential or token.
In S1906, the server 1920 may generate and issue a distributed component 1930 and transmit 3D model data.
In S1908, the distributed component 1930 controls a 3D printer 1940 to complete a 3D printing task.
In S2002, a user 2010, such as an electronic device accessing the Internet via a personal computer, remotely connects to a server 2020 via a browser or an application.
In S2004, the user 2010 logins the server, browses and searches for a 3D model file having been stored in the server 2020, to find a 3D model to be printed and obtain a print authorization credential and a distributed component 2030. In addition, a transaction link may be contained in the above process if a paid service is involved. The user 2010 may operate the distributed component 2030 via an apparatus connected to a local 3D printer, to start up printing.
In S2006, for example, the process from S1220 to S1290 described in conjunction with
In S2008, the user obtains the printed 3D models by consuming the print credential of the user. In addition, the server end may record and process accordingly.
It should be noted that the embodiment of the present disclosure is not limited to be serving as a network (such as, commercial) 3D printing platform, but may also serve as a personal 3D printing platform of the user.
In a case that the invention serves as the personal 3D printing platform of the user, the information processing apparatus according to the embodiment of the present disclosure may be implemented as a home computer configured as a server.
For example, the user may control a three dimensional printing task on a computer of the user in the following exemplary way.
The user opens software (or via the browser or application) to run a service function.
The user logins the software, browses and searches for a 3D model file having been stored in the computer, to find out a 3D model to be printed.
The user selects a printing function, and the system automatically allocates a print credential to the user. No transaction occurs in such exemplary scenario since the apparatus and the file are both private for the user. Server software generates a corresponding distributed component, and the distributed component is started to operate on a local machine (computer). Communication between the server software and the distributed component may be communication between different processes or communication between different threads. The distributed component obtains encrypted 3D model data from the server software, decrypts the encrypted 3D model data and drive a 3D printer to complete the printing.
After the printing is completed, the distributed component may clear caches, temporary files and the like on the local computer related to the printing task. Finally, the distributed component may accomplish a self-clearing.
Moreover, it may be also conceived a scenario where the user remotely connects the computer of the user to complete the 3D printing. Specifically, the user may use at offsite a computer or other electronic devices connected to the Internet, remotely connect a self-designed web server (personal computer) via a browser or an application, and finds out a 3D model to be printed, and further complete a 3D printing task with the distributed component with a similar process.
In addition, the following exemplary application scenarios may be further conceived. If the user has no available local 3D printer, the user may choose to print with other online and available 3D printers provided at the server end. After the printing is completed, the printed 3D model may be transferred to the user in an express delivery or post manner.
The distributed component obtained by the user is electronic information which can be copied and transferred. When operating for printing, the distributed component may automatically connect to a remote server to complete print authorization verification and perform the printing.
It should be understood that, the embodiment of the present disclosure is not limited to the details of the above examples.
According to the embodiment of the present disclosure, the execution of the three dimensional printing task is controlled by the distributed component, and the distributed component carries decryption information with respect to 3D model data for the three dimensional printing task. The 3D model data can be effectively protected since the 3D model data is securely transmitted from the server end to the user equipment end by using the distributed component.
Next, a configuration example of an information processing apparatus according to an embodiment of the present disclosure is described by referring to
As shown in
The processing unit 215 is configured to process three dimensional model data for a three dimensional printing task. In addition to control deployment of a distributed component generated by the generation unit 211 to the user equipment, the control unit 213 is further configured to control transmission of the three dimensional model data processed by the processing unit 215 to the user equipment.
According to an embodiment, the three dimensional model data includes primary model data and secondary model data, and the generation unit 211 may be configured to arrange the secondary model data into the generated distributed component uniquely. Accordingly, the processing unit 215 may be configured to process the three dimensional model data to be transmitted to the user equipment to be the primary model data.
In other words, according to the embodiment, the distributed component may carry a portion of 3D model data by itself, and the 3D model data issued to the user equipment end is incomplete and needs to be supplemented by the distributed component to form actually available 3D model data. With the configuration, the 3D model data can be further protected from arbitrary copy and utilization.
In addition, the process on the three dimensional model data performed by the processing unit 215 is not limited to this. For example, according to an embodiment, the processing unit 215 may be configured to encrypt the three dimensional model data or slice data obtained from the three dimensional model data, and/or perform a fragmentization process and an obfuscation process on the three dimensional model data or the slice data. Accordingly, the generated distributed component may further contain a recovery algorithm corresponding to the obfuscation process in the case that the obfuscation process is performed on the three dimensional model data.
Generally, the 3D model data needs to be processed into slice data for printing. For example, the 3D model source code file format for example includes STL and AMF, and the slice file generated in a pre-processing before the printing is generally a Gcode file, which is a set of printing instructions. Taking the STL model file as an example, the slicing process needs to be performed based on parameters of a 3D printer, such as temperature, speed, filling rate and thickness, to convert the file into Gcode codes (G codes are for controlling the printing of the 3D printer) run by a control apparatus.
According to the embodiment of the present disclosure, the slice data may be generated at the server end or may be generated by the distributed component at the user equipment end. Next, exemplary embodiments under these two cases are respectively described.
According to an embodiment, the distributed component generated and arranged to the user equipment by the information processing apparatus 200 is configured to acquire a parameter of a three dimensional printing apparatus associated with the user equipment, and control transmission of the parameter to the information processing apparatus 200. Accordingly, the processing unit 215 may be further configured to process the three dimensional model data into slice data based on the parameter. In addition, the generation unit 211 may be further configured to generate printing configuration information based on the parameter. Moreover, the control unit 213 may be configured to control transmission of the slice data obtained by the processing unit 215 and the printing configuration information generated by the generation unit 211 to the distributed component at the user equipment to control the execution of the three dimensional printing task. In the embodiment, the slice data is generated at the server end, and the parameter of the 3D printing apparatus is provided to the server end by the distributed component for generating the slice data.
According to an embodiment, the slice data is generated by the distributed component at the user equipment end. Accordingly, the generated distributed component which is deployed to the user equipment is configured to acquire a parameter of a three dimensional printing apparatus associated with the user equipment, and process three dimensional model data into slice data based on the acquired parameter.
Besides, in some applications, the user can print the 3D model only if the user obtains an authorization. In this case, the authorization information may be carried by the distributed component. According to an embodiment, the generated distributed component may contain authorization information related to three dimensional model data for a three dimensional printing task, and the distributed component may be configured to control the execution of the three dimensional printing task based on the authorization information. The authorization information may include, for example, an identifier of the three dimensional model data, an allowable number of times for printing the three dimensional model data and a usage time limit of the three dimensional model data. With the configuration, an arbitrary utilization of a three dimensional model to be protected can be effectively prevented.
In addition, according to an embodiment, the generated distributed component may be configured to clear a model file, a slice file, a temporary file and/or cache data for a three dimensional printing task, during the execution of or after completion of the three dimensional printing task. With the configuration, a malicious copy of the three dimensional model data can be effectively prevented.
As aforementioned, the information processing apparatus according to the above embodiment may be implemented as a server. For example, the information processing apparatus according to the embodiment of the present disclosure may operate as a three dimensional model browsing server or a three dimensional printing control server. In addition, the three dimensional model browsing server may include a three dimensional model library and/or a three dimensional model transaction interface.
As shown in
The foreground function units may include a registration/login unit 1614, a 3D model file browsing unit 1616, a print authorization acquisition unit 1618 and a 3D model file upload interface unit 1620.
The registration/login unit 1614 is configured to accept a registration from a new user, and is used for a registered user to login the system. The function unit may interact with an authentication unit 1602 of the background service function.
With the 3D model file browsing unit 1616, a user may browse and select a 3D model having been imported into the server end.
In a case that a user selects a certain 3D model and wants to print the 3D model, the user firstly needs to obtain a print authorization with the print authorization acquisition unit 1618. The authorization may be bound into the distributed component in an electronic data manner.
The 3D model file upload interface unit 1620 serves as an interface for the user to import 3D design of the user into the server end.
The background function units may include an authentication unit 1602, a background file import interface unit 1604, an obfuscation and encryption unit 1606, a 3D model to slice file unit 1612, a 3D model/slice file issue interface unit 1608, a transaction interface unit 1610 and a distributed component creation/issue unit 1606.
The authentication unit 1602 is used for a user to login for an authentication.
For the background file import interface unit 1604, in the case that a cloud service or a general-purpose server at the server end provides service to the external, a large quantity of 3D model files needs to be imported irregularly, the 3D model files may be imported with the background function interface in batches instead of being imported via the foreground upload interface one by one.
The obfuscation and encryption unit 1606 is configured to perform operations such as fragmentization, obfuscation and encryption on a 3D data file to be issued.
The 3D model to slice file unit 1612 is configured to convert a 3D model file (such as STL and AMF) to be in a slice file format supported by the distributed component.
For the 3D model/slice file issue interface unit 1608, if the distributed component contains an effective print authorization, then a 3D model file to be printed or a pre-processed slice file is downloaded via the issue interface, the file may be transmitted in the network in a ciphertext form.
If the server end is a business service platform, then transaction may occur during a process that the user acquires a print authorization. In this case, the transaction interface unit 1610 is configured to complete a transaction engagement for the two parties.
For the distributed component creation/issuing unit 1606, a distributed component is generated at the server end in the case that the user obtains the print authorization, in response to a print request of the user. The distributed component may be bound with the print authorization obtained by the user. The distributed component is issued to a local apparatus of the user connected to a local 3D printer to complete printing of the 3D model. If the user has no local 3D printer, the printing may also be completed by connecting available 3D printing apparatus nearby via the server.
Besides, in addition to the aforementioned authentication process on user, an authentication process on 3D printing apparatus may be needed in some applications. In this case, only a specified 3D printing apparatus can be allowed to perform a specified 3D printing task.
The authentication process on 3D printing apparatus may be performed by the distributed component. According to an embodiment, the distributed component generated by the information processing apparatus (such as a server) is configured to transfer authentication information between the information processing apparatus and the three dimensional printing apparatus, for mutual authentication between the information processing apparatus and the three dimensional printing apparatus.
Based on different authentication methods, the authentication information for example may include a certificate and signature information for a certificate mode, encryption random information or signature information for an identity public key system mode, or challenge information, identification information, and auxiliary information for a prefabrication shared key mode.
Next, the authentication process on the 3D printing apparatus is described with examples.
A 3D printing apparatus may have an apparatus identity key, which for example may be prefabricated in the apparatus at factory, or may be issued and written into the apparatus online by a third party mechanism. The apparatus key may be based on certificate authority (CA) digital certificate, may be issued by a key generation center (KGC) of an identity-based encryption system (IBE), or may be a key available to identity authentication supported by other cryptographic algorithms.
The information processing apparatus (such as the server) may also have an identity key, and may authorize the distributed component and the 3D printing apparatus to perform a bidirectional identity authentication. Specifically, the bidirectional authentication may be performed in following exemplary manners.
In manner 1, the distributed component is embedded with signature information based on an identity key of the information processing apparatus in the generation of the distributed component, and the distributed component completes the bidirectional authentication with the 3D printing apparatus with the signature information.
In manner 2, in the generation of the distributed component, the information processing apparatus gives the distributed component a right of proxy signature, and the distributed component representing the information processing apparatus completes the bidirectional authentication with the 3D printing apparatus.
In manner 3, the distributed component may also serve as an intermediate party for supporting the bidirectional authentication between the 3D printing apparatus and the information processing apparatus.
Besides, after performing the bidirectional identity authentication, the distributed component and the 3D printing apparatus may perform a key negotiation based on identity key information or authentication information to determine a communication key. After the communication key is determined, data is transmitted between the distributed component and the 3D printing apparatus by being encrypted with the communication key, thereby ensuring the security of the data from the distributed component to the 3D printing apparatus.
In S2202, the apparatus identity key is initialized. In the example, a key center 2250 provides the key to a server 2220 and a 3D printing apparatus 2240.
In S2204, a user 2210 acquires a print authorization from the server 2220 to start printing.
In S2206, the server 2220 generates a distributed component 2230 and issues the distributed component 2230 to a client apparatus.
In S2208, the distributed component 2230 and a 3D printing apparatus 2240 perform a mutual authentication.
In S2210, 3D model data is securely issued from the server 2220 to the distributed component (user equipment end) 2230.
In S2212, the distributed component 2230 controls the 3D printing apparatus 2240 to execute the printing task.
In S2214, after the printing task is completed, the printing data and the distributed component 2230 are cleared.
In S2216, the user 2210 obtains a printed model.
The identity key for example may be distributed in the initialization phase in the following key management modes: a certificate (PKI/CA)-based mode; an identity public key system (IBE)-based mode; and an apparatus prefabrication shared key (PSK)-based mode.
Hereinafter, the mutual authentication process between the distributed component and the 3D printer according to the embodiment of the present disclosure is described respectively based on these three exemplary key management modes.
In the certificate-based mode, as shown in
{circle around (1)} a distributed component 2530 connects to a 3D printing apparatus 2540 to initiate an authentication.
{circle around (2)} the 3D printing apparatus 2540 sends both signature information and a certificate to the distributed component 2530.
{circle around (3)} the distributed component 2530 forwards the certificate and the signature information of the 3D printing apparatus 2540 to a server 2520.
{circle around (4)} the server 2520 sends a certificate of the server 2520 and the certificate of the 3D printing apparatus 2540 together to a CA 2510 for certificate verification, and the CA 2510 verifies the validities of the certificates of both the server 2520 and the 3D printing apparatus 2540.
{circle around (5)} the CA 2510 returns correct response information after the verification.
{circle around (6)} if the certificate of the 3D printing apparatus is valid, the server 2520 sends the verification result of verifying the certificate of the server by the CA 2510 to the distributed component 2530.
{circle around (7)} the distributed component 2530 returns the verification result of verifying the certificate of the server by the CA 2510 to the 3D printing apparatus 2540, and the verification is completed.
In the case that the identity authentication is successful, the distributed component 2530 may perform a key negotiation with the 3D printing apparatus 2540. Then, data to be communicated between the distributed component 2530 and the 3D printing apparatus 2540 is encrypted with the negotiated key.
In the identity public key system-based mode, as shown in
The identity public key system is simplified as compared with the certificate-based authentication, since a private key is bound with an identity and no certificate is needed. Hence, a relationship between the identity and the key is verified via a third party trusted platform.
{circle around (1)} a server 2710 encrypts random information with an identity public key ID3D of 3D printing, and sends the encrypted information to a distributed component 2720 via a secure channel.
{circle around (2)} the distributed component 2720 forwards the encrypted random information to a 3D printing apparatus 2730, and the 3D printing apparatus 2730 decrypts the obtained random information with an identity private key SK3D.
{circle around (3)} the 3D printing apparatus 2730 encrypts the random information with an identity public key IDs of the server 2710 and returns the encrypted information to the distributed component 2720.
{circle around (4)} the distributed component 2720 returns the encrypted random information to the server 2710 via the secure channel. The server 2710 decrypts the obtained random information with an identity private key SKSrv. If the decrypted random information is the same as the random information before, then the identity authentication is successful.
The random information may serve as a communication encryption key. For example, the server 2710 sends random information to the distributed component 2720 via the secure channel, and data transmission between the distributed component 2720 and the 3D printing apparatus 2730 is encrypted with the random information.
Of course, in view of secure communication, in the above process flow, a signature of the sender for communication information may be added, and a receiver can determine a real identity of an actual sender. That is, the encrypted random information is sent together with a digital signature for the information. The digital signature is obtained by the sender based on an identity private key of the sender and a signature algorithm. By adding the signature, an attack from an intermediate party, that is, a listener is arranged between the distributed component and the 3D printing apparatus to forge communication contents, can be effectively resisted.
On the other hand, in the case that the random information is not used as a decryption key, after the identity authentication is successful, the distributed component 2720 may perform a key negotiation with the 3D printing apparatus 2730, and data in the communication between the distributed component 2720 and the 3D printing apparatus 2730 is encrypted with the negotiated key.
In the apparatus prefabrication shared key-based mode, as shown in
In communication, the server 2820 acquires a communication encryption key EK deduced based on the apparatus primary key, based on ID3D and other auxiliary information via the key management center 2810.
{circle around (1)} a distributed component 2930 connects a 3D printing apparatus 2940 and sends challenge information to the 3D printing apparatus 2940.
{circle around (2)} the 3D printing apparatus 2940 sends ID3D information and other auxiliary information to the distributed component 2930. Meanwhile, the 3D printing apparatus 2940 deduces an encryption key EK based on its apparatus primary key, received challenge information and auxiliary information sent by itself, by using a preset specified algorithm.
{circle around (3)} the distributed component 2930 forwards the challenge information, ID3D information and other auxiliary information to a server 2920.
{circle around (4)} the server 2920 sends the challenge information, ID3D information and other auxiliary information to a key management center 2910 via a secure channel, to request an encryption key for communication with the 3D printing apparatus 2940.
{circle around (5)} the key management center 2910 deduces an encryption key EK based on a prestored apparatus primary key corresponding to ID3D, and received challenge information, ID3D information and other auxiliary information, by using a specified algorithm, and returns the EK to the server 2920 via the secure channel.
{circle around (6)} the server 2920 securely issues the EK to the distributed component 2930. In this case, the EK can be used by the distributed component 2930 and the 3D print apparatus 2940.
It should be noted that, the mutual authentication in the embodiment of the present disclosure is not limited to the details in the above examples.
In the above description of the information processing apparatus at the server end according to the embodiment of the present disclosure, some processes and methods are disclosed apparently. Subsequently, an information processing method at the server end according to an embodiment of the present disclosure is described without repeating the details described above.
As shown in
In step S310, a distributed component for a three dimensional printing task is generated. The distributed component is configured to control execution of the three dimensional printing task independently of an information processing apparatus after establishing connection with a user equipment, and the distributed component contains decryption information with respect to three dimensional model data for the three dimensional printing task.
In step S320, the distributed component is controlled to be deployed to the user equipment.
The information processing method according to an embodiment further includes process on the three dimensional model data.
As shown in
In step S410, a distributed component for a three dimensional printing task is generated.
In step S420, the distributed component is controlled to be deployed to the user equipment.
In step S430, three dimensional model data for the three dimensional printing task is processed.
In step S440, the processed three dimensional model data is controlled to be transmitted to the user equipment.
In the above, embodiments of the information processing apparatus and information processing method at the server end are described. The embodiments of the present disclosure further include information processing apparatus and information processing method at a user equipment end.
As shown in
The control unit 511 is configured to control acquisition of a distributed component, deployed by a server end, for a three dimensional printing task. The distributed component is configured to control execution of the three dimensional printing task independent of a server after establishing connection with the user equipment, and the distributed component contains decryption information with respect to three dimensional model data for the three dimensional printing task.
The operating unit 513 is configured to operate the received distributed component to control a three dimensional printing apparatus associated with the information processing apparatus 500 to execute the three dimensional printing task.
According to an embodiment, the information processing apparatus 500 operates as the user equipment.
Accordingly,
In step S610, of a distributed component, deployed by a server end, for a three dimensional printing task is acquired. The distributed component is configured to control execution of the three dimensional printing task independent of a server after establishing connection with the user equipment, and the distributed component contains decryption information with respect to three dimensional model data for the three dimensional printing task.
In step S620, the distributed component is operated to control a three dimensional printing apparatus associated with the information processing apparatus to execute the three dimensional printing task.
In addition, the embodiment of the present disclosure further includes the above distributed component.
As shown in
The control unit 710 is configured to control execution of a three dimensional printing task independent of a server after connection is established between the distributed component 700 and the user equipment.
The carrying unit 720 is configured to carry decryption information with respect to three dimensional model data for the three dimensional printing task.
According to an embodiment, the control unit 710 is further configured to control authentication information transfer between the user equipment and the three dimensional printing apparatus, for a mutual authentication between the user equipment and the three dimensional printing apparatus.
According to an embodiment, the three dimensional model data for the three dimensional printing task includes primary model data and secondary model data, and the carrying unit 720 is further configured to uniquely carry the secondary model data.
According to an embodiment, the control unit 710 is further configure to clear a model file, a slice file, a temporary file and/or cache data for the three dimensional printing task, during the execution of or after completion of the three dimensional printing task.
According to an embodiment, the control unit 710 is further configured to perform a recovery process on the three dimensional model data subjected to an obfuscation process.
Next, a configuration example of a distributed component is described with reference to
The communication module unit 1702 is configured to control the distributed component 1700 to communicate with a server. The communication module unit 1702 for example may contain IP or URL information of the server end.
The print file decryption unit 1704 is configured to decrypt 3D print data downloaded from the server.
The obfuscated data extraction unit 1706 is configured to extract a data block from obfuscated data in a correct order.
In the generation of the distributed component at the server end, a portion of data to be printed (corresponding to the aforementioned secondary model data) may be embedded in the 3D data unit 1708. When controlling the printing, the distributed component 1700 may combine the portion of data with primary model data to obtain complete model data.
The clearer 1710 is configured to clear process data, such as cache and temporary files, during the execution of or after completion of the printing, and may unload and delete the distributed component after the printing is completed.
The print authorization information 1712 may carry authorization information on a 3D model corresponding to the 3D printing task.
The 3D printing control unit 1714 is configured to control an associated 3D printing apparatus to complete the 3D printing task.
The 3D slicing unit 1716 is configured to slice the 3D model data at the user equipment.
Processes corresponding to these units are described in the above, of which details are not described here. In addition, the distributed component according to the embodiment of the present disclosure does not necessarily include all of the above exemplary units.
In
At the server end, a fragmentization process is performed on the 3D data file 1321 to obtain the data 1323, an obfuscation process is performed on the data 1323 to obtain the data 1325. The obfuscation process is to shuffle the order of data randomly according a certain rule, which may be controlled by a specified algorithm, for example, the order is adjusted based on row and column of a matrix. An encryption process is performed on the data 1325 to obtain the data 1327. A decryption key for example may be hidden in the distributed component 1310. The server end may divide the encrypted data 1327 into two portions, with one portion of data being embedded in the distributed component 1310 and the other portion of data being the data 1329 which is issued separately. Besides, the server end may also package the encrypted print file 1329 and the distributed component 1310 and then issues the package to a client apparatus.
A 3D data file 1421, data 1422, 1423 and 1429 in
Below, an example of a process performed by a distributed component after the distributed component is connected to a user equipment is described with reference to
In step S1510, a distributed component searches for information on a 3D printer connected to a local apparatus, such as the model of the printer, and sends the information to a server end.
In step S1520, the distributed component receives parameter configuration information of the 3D printer and an encrypted print file sent from the server.
In step S1530, the distributed component sets the 3D printer in response to an instruction (parameter) at the server end, and then decrypts the print file and drives the 3D printer to complete the printing.
In step S1540, the distributed component clears print process information such as cache and temporary files.
In step S1550, the distributed component completes a self-destruction after the printing is completed.
An embodiment of the present disclosure further includes an information processing apparatus applied at a server end. As shown in
An embodiment of the present disclosure further includes an information processing apparatus applied at a user equipment end. As shown in
As an example, various steps of the methods above and various modules and/or units of the apparatuses above may be implemented as software, firmware, hardware or a combination thereof. In a case of implementing by software or firmware, programs consisting of the software for implementing the methods above are installed to a computer with a dedicated hardware structure (for example a general-purpose computer 1000 shown in
In
The following components are linked to the input/output interface 1005: an input section 1006 (including a keyboard, and a mouse and so on), an output section 1007 (including a display, for example a cathode ray tube (CRT) and a liquid crystal display (LCD), and a loudspeaker), a storage section 1008 (including a hard disk and so on), and a communication section 1009 (including a network interface card for example a LAN card, and a modem). The communication section 1009 performs communication processing via a network for example the Internet. A driver 1010 may also be linked to the input/output interface 1005 as needed. A removable medium 1011 for example a magnetic disk, an optical disk, a magnetic-optical disk and a semiconductor memory may be installed on the driver 1010 as needed, such that computer programs read from the removable medium 1011 are installed on the storage section 1008 as needed.
In a case of performing the series of processing described above by software, programs consisting of the software are installed from the network such as the Internet or the storage medium such as the removable medium 1011.
Those skilled in the art should understand that the storage medium is not limited to the removable medium 1011 shown in
A program product storing machine readable instruction codes is further provided according to the embodiments of the present disclosure. When the instruction codes are read and executed by a machine, the above method according to the embodiment of the present disclosure can be performed.
Accordingly, a storage medium for carrying the program product storing the machine readable instruction codes is further provided according to the present disclosure. The storage medium includes but is not limited to a floppy disk, an optical disk, a magnetic-optical disk, a storage card and a memory stick and so on.
In the description of specific embodiments of the present disclosure above, features described and/or illustrated for one embodiment may be used in one or more other embodiments in the same or similar manner, combined with features in other embodiments, or substitute for features in other embodiments.
It should be noted that, terms “including/comprising” used herein refer to existing of features, elements, steps or components, without excluding existence or addition of one or more other features, elements, steps or components.
In the above embodiments and examples, reference numerals consisting of numbers are used to indicate various steps and/or units. Those skilled in the art should understand that the reference numerals are used to facilitate describing and drawing, and are not intended to indicate an order or limit in any way.
In addition, the method according to the present disclosure is not limited to be performed in a time order described in the description, and may be performed in other time orders, in parallel or independently. Therefore, the order in which the method described in the description is performed does not limit the technical scope of the present disclosure.
Although the present disclosure is disclosed by the description of specific embodiments of the present disclosure above, it should be understood that all the embodiments and examples described above are only schematic and are not intended to limit. For those skilled in the art, various changes, improvements or equivalents may be designed for the present disclosure within the spirit and scope of the appended claims. The changes, improvements or equivalents should be regarded as falling within the protection scope of the present disclosure.
Patent | Priority | Assignee | Title |
12164607, | Dec 14 2016 | Kaboodl, LLC | 3D printer and inventory control and distribution system for 3D designs |
Patent | Priority | Assignee | Title |
20110208577, | |||
20130235412, | |||
20130329243, | |||
20140156053, | |||
20140298486, | |||
20150039888, | |||
20150220748, | |||
20160171354, | |||
20160180061, | |||
CN103593150, | |||
CN104484584, | |||
CN105094720, |
Executed on | Assignor | Assignee | Conveyance | Frame | Reel | Doc |
Jan 24 2017 | Sony Corporation | (assignment on the face of the patent) | / | |||
Feb 21 2019 | SHI, WEIBIN | Sony Corporation | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 048525 | /0839 | |
Mar 04 2019 | ZHANG, ZHIHUI | Sony Corporation | ASSIGNMENT OF ASSIGNORS INTEREST SEE DOCUMENT FOR DETAILS | 048525 | /0839 |
Date | Maintenance Fee Events |
Aug 03 2018 | BIG: Entity status set to Undiscounted (note the period is included in the code). |
Dec 23 2024 | REM: Maintenance Fee Reminder Mailed. |
Date | Maintenance Schedule |
May 04 2024 | 4 years fee payment window open |
Nov 04 2024 | 6 months grace period start (w surcharge) |
May 04 2025 | patent expiry (for year 4) |
May 04 2027 | 2 years to revive unintentionally abandoned end. (for year 4) |
May 04 2028 | 8 years fee payment window open |
Nov 04 2028 | 6 months grace period start (w surcharge) |
May 04 2029 | patent expiry (for year 8) |
May 04 2031 | 2 years to revive unintentionally abandoned end. (for year 8) |
May 04 2032 | 12 years fee payment window open |
Nov 04 2032 | 6 months grace period start (w surcharge) |
May 04 2033 | patent expiry (for year 12) |
May 04 2035 | 2 years to revive unintentionally abandoned end. (for year 12) |